**David Morillo Massagué, 1666540**

**Adrià Muro Gómez, 1665191**

In [27]:
import numpy as np
from tabulate import tabulate


def generate_sbox():
    return [
        0x63,
        0x7C,
        0x77,
        0x7B,
        0xF2,
        0x6B,
        0x6F,
        0xC5,
        0x30,
        0x01,
        0x67,
        0x2B,
        0xFE,
        0xD7,
        0xAB,
        0x76,
        0xCA,
        0x82,
        0xC9,
        0x7D,
        0xFA,
        0x59,
        0x47,
        0xF0,
        0xAD,
        0xD4,
        0xA2,
        0xAF,
        0x9C,
        0xA4,
        0x72,
        0xC0,
        0xB7,
        0xFD,
        0x93,
        0x26,
        0x36,
        0x3F,
        0xF7,
        0xCC,
        0x34,
        0xA5,
        0xE5,
        0xF1,
        0x71,
        0xD8,
        0x31,
        0x15,
        0x04,
        0xC7,
        0x23,
        0xC3,
        0x18,
        0x96,
        0x05,
        0x9A,
        0x07,
        0x12,
        0x80,
        0xE2,
        0xEB,
        0x27,
        0xB2,
        0x75,
        0x09,
        0x83,
        0x2C,
        0x1A,
        0x1B,
        0x6E,
        0x5A,
        0xA0,
        0x52,
        0x3B,
        0xD6,
        0xB3,
        0x29,
        0xE3,
        0x2F,
        0x84,
        0x53,
        0xD1,
        0x00,
        0xED,
        0x20,
        0xFC,
        0xB1,
        0x5B,
        0x6A,
        0xCB,
        0xBE,
        0x39,
        0x4A,
        0x4C,
        0x58,
        0xCF,
        0xD0,
        0xEF,
        0xAA,
        0xFB,
        0x43,
        0x4D,
        0x33,
        0x85,
        0x45,
        0xF9,
        0x02,
        0x7F,
        0x50,
        0x3C,
        0x9F,
        0xA8,
        0x51,
        0xA3,
        0x40,
        0x8F,
        0x92,
        0x9D,
        0x38,
        0xF5,
        0xBC,
        0xB6,
        0xDA,
        0x21,
        0x10,
        0xFF,
        0xF3,
        0xD2,
        0xCD,
        0x0C,
        0x13,
        0xEC,
        0x5F,
        0x97,
        0x44,
        0x17,
        0xC4,
        0xA7,
        0x7E,
        0x3D,
        0x64,
        0x5D,
        0x19,
        0x73,
        0x60,
        0x81,
        0x4F,
        0xDC,
        0x22,
        0x2A,
        0x90,
        0x88,
        0x46,
        0xEE,
        0xB8,
        0x14,
        0xDE,
        0x5E,
        0x0B,
        0xDB,
        0xE0,
        0x32,
        0x3A,
        0x0A,
        0x49,
        0x06,
        0x24,
        0x5C,
        0xC2,
        0xD3,
        0xAC,
        0x62,
        0x91,
        0x95,
        0xE4,
        0x79,
        0xE7,
        0xC8,
        0x37,
        0x6D,
        0x8D,
        0xD5,
        0x4E,
        0xA9,
        0x6C,
        0x56,
        0xF4,
        0xEA,
        0x65,
        0x7A,
        0xAE,
        0x08,
        0xBA,
        0x78,
        0x25,
        0x2E,
        0x1C,
        0xA6,
        0xB4,
        0xC6,
        0xE8,
        0xDD,
        0x74,
        0x1F,
        0x4B,
        0xBD,
        0x8B,
        0x8A,
        0x70,
        0x3E,
        0xB5,
        0x66,
        0x48,
        0x03,
        0xF6,
        0x0E,
        0x61,
        0x35,
        0x57,
        0xB9,
        0x86,
        0xC1,
        0x1D,
        0x9E,
        0xE1,
        0xF8,
        0x98,
        0x11,
        0x69,
        0xD9,
        0x8E,
        0x94,
        0x9B,
        0x1E,
        0x87,
        0xE9,
        0xCE,
        0x55,
        0x28,
        0xDF,
        0x8C,
        0xA1,
        0x89,
        0x0D,
        0xBF,
        0xE6,
        0x42,
        0x68,
        0x41,
        0x99,
        0x2D,
        0x0F,
        0xB0,
        0x54,
        0xBB,
        0x16,
    ]


def generate_rcon():
    return [
        0x00000000,
        0x01000000,
        0x02000000,
        0x04000000,
        0x08000000,
        0x10000000,
        0x20000000,
        0x40000000,
        0x80000000,
        0x1B000000,
        0x36000000,
    ]


# Función para aplicar la sustitución de bytes (SubBytes)
def subbytes(s_box, estado):
    for i in range(4):
        for j in range(4):
            estado[i][j] = hex(s_box[int(estado[i][j], 16)])
    return estado


# Función para aplicar la permutación de filas (ShiftRows)
def shiftrows(estado):
    for i in range(4):
        estado[i] = estado[i][i:] + estado[i][:i]  # Mueve i posiciones a la izquierda
    return estado


def galois_mult(x, y):
    if x == 1:
        return y % 256
    elif x == 2:
        resultado = y << 1
        if y & 0x80:
            resultado ^= 0x1B
        return resultado % 256
    elif x == 3:
        return galois_mult(1, y) ^ galois_mult(2, y)
    else:
        return None


def mixcolumns(estado):

    for i in range(4):
        a = estado[0][i]
        b = estado[1][i]
        c = estado[2][i]
        d = estado[3][i]

        a, b, c, d = int(a, 16), int(b, 16), int(c, 16), int(d, 16)

        estado[0][i] = hex((galois_mult(2, a) ^ galois_mult(3, b) ^ c ^ d) % 256)
        estado[1][i] = hex((a ^ galois_mult(2, b) ^ galois_mult(3, c) ^ d) % 256)
        estado[2][i] = hex((a ^ b ^ galois_mult(2, c) ^ galois_mult(3, d)) % 256)
        estado[3][i] = hex((galois_mult(3, a) ^ b ^ c ^ galois_mult(2, d)) % 256)

    return estado


def add_round_key(estado, clave):
    for i in range(4):
        for j in range(4):
            estado[i][j] = hex(int(estado[i][j], 16) ^ int(clave[i][j], 16))
    return estado


def key_expansion(key, sbox, Rcon, round_num):
    def rotword(word):
        return word[1:] + word[:1]

    def subword(word):
        return [sbox[b] for b in word]

    def rcon(i):
        if i < len(Rcon):
            return [Rcon[i] >> 24, 0x00, 0x00, 0x00]
        return [0x00, 0x00, 0x00, 0x00]

    expanded_keys = np.array([[int(x, 16) for x in col] for col in zip(*key)]).tolist()

    new_key = []
    new_column = []

    temp = expanded_keys[-1]

    temp = subword(rotword(temp))
    temp = [temp[j] ^ rcon(round_num)[j] for j in range(4)]
    temp = [temp[j] ^ expanded_keys[0][j] for j in range(4)]

    new_key.append(temp)

    for i in range(1, 4):

        new_column = [new_key[-1][j] ^ expanded_keys[i][j] for j in range(4)]
        new_key.append(new_column)

    new_key_hex = [[f"0x{num:02x}" for num in col] for col in new_key]
    new_key_hex = [list(x) for x in zip(*new_key_hex)]

    return new_key_hex


def aes_encrypt(estado, key):

    sbox = generate_sbox()
    Rcon = generate_rcon()

    # Ronda inicial
    print("AddRoundKey - Input:")
    print(tabulate(estado, tablefmt="grid"))
    estado = add_round_key(estado, key)
    print("AddRoundKey - Output:")
    print(tabulate(estado, tablefmt="grid"))

    # 9 rondas principales
    for i in range(1, 10):
        # SubBytes
        if i == 1:  # Només volem imprimir la primera vegada que passa per SubBytes
            print("SubBytes - Input:")
            print(tabulate(estado, tablefmt="grid"))
        estado = subbytes(sbox, estado)
        if i == 1:
            print("SubBytes - Output:")
            print(tabulate(estado, tablefmt="grid"))

        # ShiftRows
        if i == 1:  # Només volem imprimir la primera vegada que passa per ShiftRows
            print("ShiftRows - Input:")
            print(tabulate(estado, tablefmt="grid"))
        estado = shiftrows(estado)
        if i == 1:
            print("ShiftRows - Output:")
            print(tabulate(estado, tablefmt="grid"))

        # MixColumns
        if i == 1:  # Només volem imprimir la primera vegada que passa per MixColumns
            print("MixColumns - Input:")
            print(tabulate(estado, tablefmt="grid"))
        estado = mixcolumns(estado)
        if i == 1:
            print("MixColumns - Output:")
            print(tabulate(estado, tablefmt="grid"))

        # Expandir clave
        key = key_expansion(key, sbox, Rcon, i)

        # AddRoundKey
        estado = add_round_key(estado, key)

    # Ronda final

    estado = subbytes(sbox, estado)

    estado = shiftrows(estado)

    key = key_expansion(key, sbox, Rcon, 10)

    estado = add_round_key(estado, key)

    return estado

### Prova amb l'estat i clau de la web de l'animació: https://formaestudio.com/rijndaelinspector/archivos/Rijndael_Animation_v4_eng-html5.html

In [28]:
estado = [
    ["0x32", "0x88", "0x31", "0xe0"],
    ["0x43", "0x5a", "0x31", "0x37"],
    ["0xf6", "0x30", "0x98", "0x07"],
    ["0xa8", "0x8d", "0xa2", "0x34"],
]

key = [
    ["0x2b", "0x28", "0xab", "0x09"],
    ["0x7e", "0xae", "0xf7", "0xcf"],
    ["0x15", "0xd2", "0x15", "0x4f"],
    ["0x16", "0xa6", "0x88", "0x3c"],
]

# Cifrar el mensaje
estado_cifrado = aes_encrypt(estado, key)

# Convertir el estado cifrado a cadena
print("Missatge Xifrat - Output:")
print(tabulate(estado_cifrado, tablefmt="grid"))

AddRoundKey - Input:
+------+------+------+------+
| 0x32 | 0x88 | 0x31 | 0xe0 |
+------+------+------+------+
| 0x43 | 0x5a | 0x31 | 0x37 |
+------+------+------+------+
| 0xf6 | 0x30 | 0x98 | 0x07 |
+------+------+------+------+
| 0xa8 | 0x8d | 0xa2 | 0x34 |
+------+------+------+------+
AddRoundKey - Output:
+------+------+------+------+
| 0x19 | 0xa0 | 0x9a | 0xe9 |
+------+------+------+------+
| 0x3d | 0xf4 | 0xc6 | 0xf8 |
+------+------+------+------+
| 0xe3 | 0xe2 | 0x8d | 0x48 |
+------+------+------+------+
| 0xbe | 0x2b | 0x2a | 0x8  |
+------+------+------+------+
SubBytes - Input:
+------+------+------+------+
| 0x19 | 0xa0 | 0x9a | 0xe9 |
+------+------+------+------+
| 0x3d | 0xf4 | 0xc6 | 0xf8 |
+------+------+------+------+
| 0xe3 | 0xe2 | 0x8d | 0x48 |
+------+------+------+------+
| 0xbe | 0x2b | 0x2a | 0x8  |
+------+------+------+------+
SubBytes - Output:
+------+------+------+------+
| 0xd4 | 0xe0 | 0xb8 | 0x1e |
+------+------+------+------+
| 0x27 | 0xbf | 0xb4

### Prova amb missatge i clau custom:

In [31]:
def ajustar_longitud(string, longitud): # Retalla o afegeix espais a la cadena per a que tingui la longitud desitjada
    return str(string + ' ' * (longitud - len(string)))[:longitud]

def str2mtxhex(texto):
    mat = [[hex(ord(texto[i + j * 4])) for j in range(4)] for i in range(4)]
    return mat

def mtxhex2str(mat):
    texto = "".join([chr(int(mat[i][j], 16)) for j in range(4) for i in range(4)])
    return texto

mensaje = ajustar_longitud("MissatgeSecret", 16)
key = ajustar_longitud("ClauSecreta", 16)

estado = str2mtxhex(mensaje)
key = str2mtxhex(key)

print("Missatge Xifrat - Input:")
print(tabulate(estado, tablefmt="grid"))

# Cifrar el mensaje
estado_cifrado = aes_encrypt(estado, key)


# Convertir el estado cifrado a cadena

print("Missatge Xifrat - Output:")
print(tabulate(estado_cifrado, tablefmt="grid"))

Missatge Xifrat - Input:
+------+------+------+------+
| 0x4d | 0x61 | 0x53 | 0x65 |
+------+------+------+------+
| 0x69 | 0x74 | 0x65 | 0x74 |
+------+------+------+------+
| 0x73 | 0x67 | 0x63 | 0x20 |
+------+------+------+------+
| 0x73 | 0x65 | 0x72 | 0x20 |
+------+------+------+------+
AddRoundKey - Input:
+------+------+------+------+
| 0x4d | 0x61 | 0x53 | 0x65 |
+------+------+------+------+
| 0x69 | 0x74 | 0x65 | 0x74 |
+------+------+------+------+
| 0x73 | 0x67 | 0x63 | 0x20 |
+------+------+------+------+
| 0x73 | 0x65 | 0x72 | 0x20 |
+------+------+------+------+
AddRoundKey - Output:
+------+------+------+------+
| 0xe  | 0x32 | 0x36 | 0x45 |
+------+------+------+------+
| 0x5  | 0x11 | 0x11 | 0x54 |
+------+------+------+------+
| 0x12 | 0x4  | 0x2  | 0x0  |
+------+------+------+------+
| 0x6  | 0x17 | 0x52 | 0x0  |
+------+------+------+------+
SubBytes - Input:
+------+------+------+------+
| 0xe  | 0x32 | 0x36 | 0x45 |
+------+------+------+------+
| 0x5  | 0x11 

### Validació de l'algoritme

In [33]:
from Crypto.Cipher import AES
from tabulate import tabulate

def ajustar_longitud(string, longitud):
    """Retalla o afegeix espais a la cadena perquè tingui la longitud desitjada."""
    return str(string + ' ' * (longitud - len(string)))[:longitud]

def str2mtxhex(texto):
    """Converteix una cadena en una matriu d'hexadecimals (4x4)."""
    return [[hex(ord(texto[i + j * 4])) for j in range(4)] for i in range(4)]

def mtxhex2bytes(mat):
    """Converteix una matriu d'hexadecimals en un array de bytes."""
    return bytes([int(mat[i][j], 16) for j in range(4) for i in range(4)])

def bytes2mtxhex(byte_array):
    """Converteix un array de bytes en una matriu d'hexadecimals (4x4)."""
    return [[hex(byte_array[i + j * 4]) for j in range(4)] for i in range(4)]

def mtxhex2str(mat):
    """Converteix una matriu d'hexadecimals en una cadena de text."""
    return "".join([chr(int(mat[i][j], 16)) for j in range(4) for i in range(4)])

# Missatge i clau
mensaje = ajustar_longitud("MissatgeSecret", 16)
key = ajustar_longitud("ClauSecreta", 16)

# Convertim a matriu hexadecimal
estado = str2mtxhex(mensaje)
key_bytes = ajustar_longitud("ClauSecreta", 16).encode('utf-8')  # La clau en bytes

print("Missatge - Input:")
print(tabulate(estado, tablefmt="grid"))

# Xifrar el missatge amb AES-ECB
cipher = AES.new(key_bytes, AES.MODE_ECB)
estado_bytes = mtxhex2bytes(estado)  # Convertim la matriu a bytes
estado_cifrado_bytes = cipher.encrypt(estado_bytes)  # Xifrem
estado_cifrado = bytes2mtxhex(estado_cifrado_bytes)  # Convertim el resultat a matriu

print("Missatge Xifrat PyCryptodome - Output:")
print(tabulate(estado_cifrado, tablefmt="grid"))

# Desxifrar el missatge
cipher_dec = AES.new(key_bytes, AES.MODE_ECB)
estado_desxifrat_bytes = cipher_dec.decrypt(estado_cifrado_bytes)  # Desxifrem
estado_desxifrat = bytes2mtxhex(estado_desxifrat_bytes)  # Convertim a matriu

print("Missatge Desxifrat Pycryptodome - Output:")
print(tabulate(estado_desxifrat, tablefmt="grid"))

# Convertim el resultat desxifrat a text
mensaje_desxifrat = mtxhex2str(estado_desxifrat)
print("\nText desxifrat:", mensaje_desxifrat)

Missatge - Input:
+------+------+------+------+
| 0x4d | 0x61 | 0x53 | 0x65 |
+------+------+------+------+
| 0x69 | 0x74 | 0x65 | 0x74 |
+------+------+------+------+
| 0x73 | 0x67 | 0x63 | 0x20 |
+------+------+------+------+
| 0x73 | 0x65 | 0x72 | 0x20 |
+------+------+------+------+
Missatge Xifrat PyCryptodome - Output:
+------+------+------+------+
| 0x1f | 0x12 | 0xa1 | 0x3  |
+------+------+------+------+
| 0xbb | 0x42 | 0xfa | 0xe4 |
+------+------+------+------+
| 0xab | 0x3c | 0xe3 | 0x85 |
+------+------+------+------+
| 0xee | 0xe4 | 0xe3 | 0x3f |
+------+------+------+------+
Missatge Desxifrat Pycryptodome - Output:
+------+------+------+------+
| 0x4d | 0x61 | 0x53 | 0x65 |
+------+------+------+------+
| 0x69 | 0x74 | 0x65 | 0x74 |
+------+------+------+------+
| 0x73 | 0x67 | 0x63 | 0x20 |
+------+------+------+------+
| 0x73 | 0x65 | 0x72 | 0x20 |
+------+------+------+------+

Text desxifrat: MissatgeSecret  
